mattermost
576 tracked vulnerabilities.
CVE-2020-14453
HIGH
Mattermost Server < 5.21.0 - Denial of Service via Socket Read Operations
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-14452
MEDIUM
Mattermost Server < 5.21.0 - Path Traversal via mmctl
Jun 19, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-14451
HIGH
Mattermost Mobile Apps <1.29.0 - Info Disclosure
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-14450
HIGH
Mattermost Server < 5.22.0 - Denial of Service via Markdown Renderer
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-14449
HIGH
Mattermost Mobile Apps <1.30.0 - Info Disclosure
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-14448
HIGH
Mattermost Server < 5.23.0 - Denial of Service via Automatic Direct Message Replies
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-14447
HIGH
Mattermost Server < 5.23.0 - Denial of Service via Large Webhook Requests
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20890
MEDIUM
Mattermost Server <5.7 - Info Disclosure
Jun 19, 2020
CVSS 4.3
EPSS 0.00
CVE-2019-20889
MEDIUM
Mattermost Server < 4.10.5, 5.5.2, 5.6.3, 5.7 - Incorrect Default Permissions for User-Access Token Creation
Jun 19, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-20888
HIGH
Mattermost Server < 5.7 - Denial of Service via Outgoing Webhook or Slash Command Integration
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20887
MEDIUM
Mattermost Server < 4.10.6 - Missing Authorization for Intra-Team Post Access
Jun 19, 2020
CVSS 4.3
EPSS 0.00
CVE-2019-20886
HIGH
Mattermost Server < 5.8.0 - Improper Privilege Management
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20885
HIGH
Mattermost Server < 5.8.0 - Missing Authorization for robots.txt Generation
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20884
MEDIUM
Mattermost Server <5.8.0 - Info Disclosure
Jun 19, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-20883
MEDIUM
Mattermost Server <5.8.0 - Info Disclosure
Jun 19, 2020
CVSS 4.3
EPSS 0.00
CVE-2019-20882
MEDIUM
Mattermost Server < 5.8.0 - Incorrect Default Permissions in Open Team Join Request
Jun 19, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-20881
HIGH
Mattermost Server < 5.8.0 - Improper Restriction of Excessive Authentication Attempts
Jun 19, 2020
CVSS 7.3
EPSS 0.00
CVE-2019-20880
HIGH
Mattermost Server < 5.8.0, < 5.7.2, < 5.6.5, < 4.10.7 - Denial of Service via OpenGraph
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20879
MEDIUM
Mattermost Server < 4.10.7, < 5.6.5, < 5.7.2, < 5.8.0 - Improper Authentication via Email Change
Jun 19, 2020
CVSS 4.3
EPSS 0.00
CVE-2019-20878
MEDIUM
Mattermost Server <5.9.0-4.10.8 - Info Disclosure
Jun 19, 2020
CVSS 4.3
EPSS 0.00
CVE-2019-20877
MEDIUM
Mattermost Server <5.9.0-4.10.8 - Info Disclosure
Jun 19, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-20876
MEDIUM
Mattermost Server <5.9.0-4.10.8 - Auth Bypass
Jun 19, 2020
CVSS 5.4
EPSS 0.00
CVE-2019-20875
MEDIUM
Mattermost Server < 5.9.0, < 5.8.1, < 5.7.3, < 4.10.8 - Improper Authentication via Password Reset
Jun 19, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-20874
HIGH
Mattermost Server <5.9.0-4.10.8 - Info Disclosure
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20873
MEDIUM
Mattermost Server <5.9.0-4.10.8 - Info Disclosure
Jun 19, 2020
CVSS 6.5
EPSS 0.00
Products
mattermost_server 412
mattermost 233
mattermost-server 186
Mattermost 75
mattermost_desktop 23
mattermost_mobile 20
confluence 14
mattermost-plugin-confluence 14
mattermost-plugin-msteams 4
mattermost-plugin-playbooks 4
mattermost-plugin-jira 3
Focalboard 2
focalboard 2
mattermost-plugin-boards 2
mattermost-plugin-calls 2
mattermost-plugin-zoom 2
mattermost_boards 2
ms_teams 2
playbooks 2
zoom 2
channel_export 1
mattermost-plugin-channel-export 1
mattermost-plugin-github 1
mattermost_channel_export 1
mattermost_packages 1
mattermost_plugins 1
Quick Filters